Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NnHxbXcIjDbmgg3YwjjIYBq7eKU.roa
File: NnHxbXcIjDbmgg3YwjjIYBq7eKU.roa (raw, json)
Hash identifier: Y5bV7l+jRL2WwI/21SuiIvPryZueKKYixyaejVV2ZX8=
Subject key identifier: 36:71:F1:6D:77:08:8C:36:E6:82:0D:D8:C2:38:C8:60:1A:BB:78:A5
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0185966DD8B940D83CDFB6EC79F37E13E0C3
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NnHxbXcIjDbmgg3YwjjIYBq7eKU.roa
Signing time: Mon 09 Jan 2023 12:07:39 +0000
ROA not before: Mon 09 Jan 2023 12:07:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 188.241.136.0/24 maxlen: 24
93.114.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 15:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:96:6d:d8:b9:40:d8:3c:df:b6:ec:79:f3:7e:13:e0:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 9 12:07:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3671f16d77088c36e6820dd8c238c8601abb78a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:73:e8:9f:1c:2d:dc:69:7d:b6:02:3a:e7:ab:
d8:ce:27:2c:e0:c4:e0:c3:e7:cf:92:1d:d8:65:fc:
d9:2b:a3:60:48:7f:ea:c7:52:8f:ae:79:1c:21:d7:
b6:9b:91:76:95:e8:00:05:a6:03:22:fe:e2:1e:ff:
b3:31:1e:6c:73:fa:53:60:9d:27:00:42:9b:cb:d1:
c1:32:77:2a:5a:6c:96:db:96:0e:5a:a4:05:a4:1e:
48:d2:60:fd:ae:9a:f1:85:3a:63:66:d1:e8:bf:1c:
62:56:12:06:17:39:5b:c8:e2:88:a7:b8:d6:c8:e3:
e9:ff:bf:2a:e8:80:ed:fb:64:a7:79:4e:87:12:89:
33:3b:c4:96:56:f4:42:2d:56:76:9f:42:d3:e0:98:
22:72:44:1f:5d:70:1c:75:a5:94:0f:af:c3:47:b9:
2e:a4:5e:50:87:20:50:d9:22:0a:6d:6e:8b:a6:fa:
4d:ea:82:bf:72:1c:a8:31:11:e1:02:e2:2d:95:2f:
52:bc:65:b1:ef:22:71:ec:1a:a8:eb:4f:1a:85:2a:
43:9a:a2:b2:b2:13:0f:13:87:a0:8c:2f:d0:8e:ac:
48:3e:93:1f:53:98:33:54:b9:dc:92:50:c4:b5:13:
6a:95:bc:48:87:a8:38:bb:ae:b6:f7:99:e9:21:4f:
0f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:71:F1:6D:77:08:8C:36:E6:82:0D:D8:C2:38:C8:60:1A:BB:78:A5
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/NnHxbXcIjDbmgg3YwjjIYBq7eKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.114.244.0/24
188.241.136.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3b:54:31:d8:5b:d6:9f:a2:71:c8:1f:ce:95:fb:76:d3:63:
67:4d:a6:bd:f1:8d:ee:6a:58:d2:40:61:ce:da:ea:e9:02:c2:
49:71:44:1d:57:eb:a2:95:9d:74:ff:5b:f8:68:2e:14:ff:e3:
a3:fa:37:36:dd:82:5c:7c:00:67:13:da:49:32:03:e1:e0:ad:
99:86:40:9c:95:01:22:92:47:bd:81:de:e0:39:e8:6f:91:2c:
d5:ae:7e:9f:cd:77:53:ef:56:c3:f8:f2:49:3d:0e:bc:9b:57:
11:31:ec:62:c9:84:4f:1d:75:98:f4:05:df:59:dd:23:fa:34:
ef:a9:4a:48:c0:f1:b6:3b:c7:de:19:f0:8a:e7:53:57:52:97:
fe:ab:d3:61:e4:06:0e:46:27:1a:b5:6d:80:82:49:e1:f4:86:
bc:46:a9:5d:34:2d:79:0c:b6:e6:37:d4:33:42:99:4d:2b:04:
3f:2d:51:44:db:2e:87:66:fe:ae:4c:a7:bd:69:d7:a1:61:ef:
e9:9c:8f:c7:31:e7:16:38:d6:c0:08:8f:25:91:c0:c1:7f:85:
e2:10:3a:29:1c:f9:9d:01:92:62:cc:40:51:eb:29:ef:c1:68:
dd:fb:2a:f4:56:dd:9b:be:86:9f:25:bf:94:3a:e9:17:3c:f7:
f0:b3:a6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org